[Please keep me CCed] Florin Andrei wrote: > Patrick McHardy wrote: > >> >> Please try 2.6.23 once its out (or the current -rc), it should behave >> better. >> >> 2.6.24 will include stateless NAT again for 1:1 mappings. > > > So, can you elaborate a little bit? > I understand the thing about stateless NAT and 2.6.24 - that's very good > news, too bad it's not in older versions. :-) > > But what's different in 2.6.23-rc that will make it better in my situation? The eviction algorithms scans up to a maximum of 8 entries before giving up instead of stopping at the end of the hash chain (which is a single entry with a properly sized hash). So the chances of finding an unconfirmed entry to evict are better. - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
